Known Vulnerabilities for Java System Web Server by Sun
Listed below are 10 of the newest known vulnerabilities associated with "Java System Web Server" by "Sun".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-28228 | OpenOlat is an open source web-based e-learning platform for teaching, learning, assessment and communication. Prior to versi... | Not Provided | 2026-03-30 | 2026-03-31 |
| CVE-2010-0389 | The admin server in Sun Java System Web Server 7.0 Update 6 allows remote attackers to cause a denial of service (NULL pointe... | 5 - MEDIUM | 2010-01-25 | 2010-01-31 |
| CVE-2010-0388 | Format string vulnerability in the WebDAV implementation in webservd in Sun Java System Web Server 7.0 Update 6 allows remote... | 7.5 - HIGH | 2010-01-25 | 2017-08-17 |
| CVE-2010-0387 | Multiple heap-based buffer overflows in (1) webservd and (2) the admin server in Sun Java System Web Server 7.0 Update 7 allo... | 7.5 - HIGH | 2010-01-25 | 2017-08-17 |
| CVE-2010-0361 | Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server (aka SJWS) 7.0 Update 7 al... | 10 - HIGH | 2010-01-20 | 2011-04-28 |
| CVE-2010-0360 | Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote attackers to overwrite memory locations in the heap, and dis... | 10 - HIGH | 2010-01-20 | 2011-04-28 |
| CVE-2010-0273 | Unspecified vulnerability in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to execute arbitrary co... | 7.5 - HIGH | 2010-01-08 | 2010-01-11 |
| CVE-2010-0272 | Heap-based buffer overflow in Sun Java System Web Server 7.0 Update 6 on Linux allows remote attackers to discover process me... | 7.5 - HIGH | 2010-01-08 | 2017-08-17 |
| CVE-2009-2712 | Sun Java System Access Manager 6.3 2005Q1, 7.0 2005Q4, and 7.1; and OpenSSO Enterprise 8.0; when AMConfig.properties enables ... | 2.1 - LOW | 2009-08-07 | 2009-08-15 |
| CVE-2009-2445 | Oracle iPlanet Web Server (formerly Sun Java System Web Server or Sun ONE Web Server) 6.1 before SP12, and 7.0 through Update... | 5 - MEDIUM | 2009-07-13 | 2011-08-29 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Sun | Java System Web Server | 7.0 | All | All | All |
| Application | Sun | Java System Web Server | 7.0 | All | hp_ux | All |
| Application | Sun | Java System Web Server | 6.1 | All | All | All |
| Application | Sun | Java System Web Server | 6.1 | sp1 | All | All |
| Application | Sun | Java System Web Server | 6.1 | sp2 | All | All |
| Application | Sun | Java System Web Server | 6.1 | sp3 | All | All |
| Application | Sun | Java System Web Server | 6.1 | sp4 | All | All |
| Application | Sun | Java System Web Server | 6.1 | sp5 | All | All |
| Application | Sun | Java System Web Server | 6.1 | sp6 | All | All |
| Application | Sun | Java System Web Server | 6.1 | sp7 | All | All |
| Application | Sun | Java System Web Server | 6.0 | All | All | All |
| Application | Sun | Java System Web Server | - | All | All | All |